Kronos (malware)

From Wikipedia, the free encyclopedia
Jump to navigation Jump to search

Kronos was a type of banking malware first reported in 2014. It was sold for $7000.

As of September 2015, a renew version was reconnecting with infected bots and sending them a brand new configuration file against U.K. banks and one bank in India.[1]

Similar to Zeus[2] it was focused on stealing banking login credentials from browser sessions.[3]

In August 2017, British security researcher Marcus Hutchins (aka 'Malwaretech') notable for his involvement stopping the May 2017 WannaCry ransomware attack[4] was arrested by the FBI whilst visiting the United States.[5] He was alleged to have created the software in 2014, and to have sold it in 2015 via the AlphaBay forums.[6][7]


  1. ^ UK Banks Hit With New Zeus Sphinx Variant and Renewed Kronos Banking Trojan Attacks
  2. ^ Overview of the Kronos banking malware rootkit
  3. ^ Constantin, Lucian (14 July 2014). "New banking malware 'Kronos' advertised on underground forums". Retrieved 4 August 2017. 
  4. ^ Gibbs, Samuel (22 May 2017). "WannaCry hackers still trying to revive attack says accidental hero". The Guardian. Retrieved 22 May 2017. 
  5. ^ McGoogan, Cara (4 August 2017). "WannaCry hero Marcus Hutchins could face 40 years in US prison". Retrieved 4 August 2017. 
  6. ^ "Indictment". Retrieved 4 August 2017. 
  7. ^ Kerr, Orin (3 August 2017). "The Kronos indictment: Is it a crime to create and sell malware?". Retrieved 4 August 2017.